loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Paper Unlock

Authors: Cátia Santos-Pereira 1 ; Luis Antunes 2 ; Ricardo Cruz-Correia 3 and Ana Ferreira 4

Affiliations: 1 Center for Research in Health Technologies and Information Systems – CINTESIS and University of Porto, Portugal ; 2 University of Porto, Portugal ; 3 Faculty of Medicine University of Porto and University of Porto, Portugal ; 4 Center for Research in Health Technologies and Information Systems – CINTESIS, Center for Informatics – CI and University of Porto, Portugal

Keyword(s): Patient Empowerment, Computer Security, Confidentiality, Electronic Health Records, Role Based Access Control.

Related Ontology Subjects/Areas/Topics: Biomedical Engineering ; Confidentiality and Data Security ; Electronic Health Records and Standards ; Health Information Systems

Abstract: American and European Legislation for protection of medical data agree that the patient has the right to play a pivotal role in the decisions regarding the content and distribution of her/his medical records. The Role Based Access Control (RBAC) model is the most commonly used authorization model in healthcare. The first goal of this work is to review if existing models and standards provide for patients accessing their medical records and customizing access control rules, the second goal is to define and propose an authorization model based on RBAC to be used and customized by the patient. A literature review was performed and encompassed 22 articles and standards from which 12 were included for analysis. Results show that existing standards define guidelines for these issues but they are too generic to be directly applied to real healthcare settings. The proposed authorization model combines characteristics of RBAC, ISO/TS 13606-4, temporal constraints and break the glass. With thi s model we hope to start bridging the gap between legislation and what really happens in practice in terms of patients controlling and being actively involved in their healthcare. Future work includes the implementation and evaluation of the proposed model in a healthcare setting. (More)

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 18.97.14.82

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Santos-Pereira, C. ; Antunes, L. ; Cruz-Correia, R. and Ferreira, A. (2012). ONE WAY TO PATIENT EMPOWERMENT - The Proposal of an Authorization Model. In Proceedings of the International Conference on Health Informatics (BIOSTEC 2012) - HEALTHINF; ISBN 978-989-8425-88-1; ISSN 2184-4305, SciTePress, pages 249-255. DOI: 10.5220/0003787902490255

@conference{healthinf12,
author={Cátia Santos{-}Pereira and Luis Antunes and Ricardo Cruz{-}Correia and Ana Ferreira},
title={ONE WAY TO PATIENT EMPOWERMENT - The Proposal of an Authorization Model},
booktitle={Proceedings of the International Conference on Health Informatics (BIOSTEC 2012) - HEALTHINF},
year={2012},
pages={249-255},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0003787902490255},
isbn={978-989-8425-88-1},
issn={2184-4305},
}

TY - CONF

JO - Proceedings of the International Conference on Health Informatics (BIOSTEC 2012) - HEALTHINF
TI - ONE WAY TO PATIENT EMPOWERMENT - The Proposal of an Authorization Model
SN - 978-989-8425-88-1
IS - 2184-4305
AU - Santos-Pereira, C.
AU - Antunes, L.
AU - Cruz-Correia, R.
AU - Ferreira, A.
PY - 2012
SP - 249
EP - 255
DO - 10.5220/0003787902490255
PB - SciTePress